General Topics

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

control_plane: exiting because service missed too many heartbeats,0,0x0

Hi,

We have alert "control_plane: exiting because service missed too many heartbeats,0,0x0" on system log.

It's bug from OS ? Now we used 4.0.11.

Thanks

Dd

Automatic logon with GlobalProtect when settings are set to "on-demand"

Some of our users are experiencing automatic logon, even if the GlobalProtect is configured with on-demand. In most cases this is just a minor inconvenience, but one of our portals are configured with two-factor authentication, and when they chose "d

...

Resolved! Email Links

I have been blocking the url category for web-based email per my company policy, but i am having issues with newsletters that have links.

For example this one I have.

An email comes in to view the upcoming items for sale.

here is the link

Healthy Sna

...

Cryptowall 2.0?

Starting to see Cryptowall 2.0 infections anyone heard any updates from PA on a threat update for this? based on my google search it's been in the wild for a week or so.

HA failover time

Hello,

How many time does failover take in seconds (when it happen)?, I have an Active/Passive deployment and I hope to use 5050 platform

Resolved! Skype-Probe Problem

Hi All,

It's again me, with my issues! :smileygrin:

I was asking for this issue once, but didn't find any solution.

So there were going Skype-probe requests to an XXXX.XXXX.XXXX.XXXX ip address with application(Skype-Probe).It took one week.Then when w

...

I've noticed an incomplate request to 111.111.111.111

Hi Guys,

On PAN's Monitor tab i've noticed that one of our hosts(user's computers) send periodically some packets to 111.111.111.111 and receive any packets.on Application tab it stays incomplete!what is the shit?Did anyone have the problem like this?

...

Is there a similar service like IP SLA so the firewall can change default routes as a result of a certain condition

I was just curious...if I have 2 internet feeds but am not peering - I use ip/SLA to guanratee service. If a ping to 4.2.2.2 fails, it drops the current default route and the other default route with the higher AD is the active default route.

Is ther

...

DNS not DNS? Strange UDP 53?

I am seeing a huge amount of traffic outbound from my DNS server that seems to be being dropped by the firewall. Its being dropped because my application rule says "allow DNS server to talk DNS to the internet", it doesn't match that (because its not

...

Resolved! AD Group for Authentication

Let's say I have 150 users in an AD group and I need to give them all login access to my Palo Alto device farm. How do I do that?

Inconsistent documentation on zone protection

Hello,

Palo Alto's documentation is inconsistent on the behavior of flood protection when it is applied by a zone protection policy.

1) "Threat Prevention Deployment Tech Note - Version 2.0 RevA", page 44 says that the zone protection based flood prote

...

Resolved! Source and Destination NAT at the same time

Hallo

Before going to my question, please assume the following scenario:

There is a Non-Palo Alto Firewall in internet (lets call it FW-Extern). There is another Non Palo Alto Firewall inside my network (lets call it FW-intern). The FW-Extern initiates

...

Pa VPN IPsec

Hi,

i have a question regarding the VPN IPsec on Paloalto , is palotlo must be in front end when configuring the PA

Regards,

Sarah

Resolved! URL filtering - incosistency with online BrightCloud database

Hello.

A while ago website www.rk-celje.si was recognised as malware-site. But in last couple of months the website seems to be clean and online BrightCloud lookup (URL/IP Lookup | Webroot BrightCloud) recognises it as 'Trustworthy' and categorizes it

...

i created a policy to allow 1099 and 9002 for many servers. but it is working for few servers only not for all and few 1099 is working but not 9002.

General Topics

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free